wild/openhip-reference
1
0
Fork 0
mirror of https://bitbucket.org/openhip/openhip/ synced 2023-12-14 05:52:53 +01:00
Code Issues Releases Wiki Activity

Add TODO re: concerns for SADB AES

Browse source
This commit is contained in:
jenli669 2021-12-13 11:39:44 +01:00
parent 5d4ec559d3
commit 682f6fc9cc
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/usermode/hip_esp.c
View file

@ -2509,6 +2509,7 @@ int hip_esp_decrypt(__u8 *in, int len, __u8 *out, int *offset, int *outlen,
// { // {
// printf("hip_esp_decrypt: AES key problem!\n"); // printf("hip_esp_decrypt: AES key problem!\n");
// } // }
// TODO: Does this discriminate AES-128-CBC and AES-256-CBC now?
entry->evp_cipher = EVP_CIPHER_fetch( entry->evp_cipher = EVP_CIPHER_fetch(
/*OSSL_LIB_CTX *ctx*/ NULL, /*OSSL_LIB_CTX *ctx*/ NULL,
/*const char *algorithm*/ "AES-256-CBC", /*const char *algorithm*/ "AES-256-CBC",
@ -2566,7 +2567,6 @@ int hip_esp_decrypt(__u8 *in, int len, __u8 *out, int *offset, int *outlen,
/* padinfo = (struct ip_esp_padinfo*) &in[len - alen - 2]; */ /* padinfo = (struct ip_esp_padinfo*) &in[len - alen - 2]; */
break; break;
case SADB_X_EALG_AESCBC: case SADB_X_EALG_AESCBC:
EVP_CIPHER_CTX_set_key_length(evp_cipher_ctx, entry->e_keylen); EVP_CIPHER_CTX_set_key_length(evp_cipher_ctx, entry->e_keylen);
EVP_CipherInit_ex2(evp_cipher_ctx, EVP_CipherInit_ex2(evp_cipher_ctx,
entry->evp_cipher, entry->evp_cipher,